Case Study: BigCommerce strengthens security with Bugcrowd

BigCommerce validates 75% of vulnerabilities within 4 days with Bugcrowd

BigCommerce, a leading open SaaS ecommerce platform, faced the challenge of identifying security vulnerabilities across its extensive IT platforms, applications, and devices. To evolve its cybersecurity strategy, the company partnered with Bugcrowd to implement a Managed Bug Bounty program.

Bugcrowd's solution was to launch a public bug bounty program, allowing any security researcher worldwide to submit vulnerabilities. This process, managed by Bugcrowd, included vetting, triaging submissions, and handling reward payments. The results were significant; during a prior two-year private program, over 75% of identified vulnerabilities were validated within four days, and 114 vulnerabilities were rewarded. This provided BigCommerce with a crucial additional layer of defense, enabling its engineering teams to prioritize and remediate issues quickly, with one fix pushed to production in under 30 minutes.

BigCommerce